Example 1 with CmdStdinContext
use of org.keycloak.client.registration.cli.common.CmdStdinContext in project keycloak by keycloak.
the class UpdateCmd method execute.
@Override
public CommandResult execute(CommandInvocation commandInvocation) throws CommandException, InterruptedException {
List<AttributeOperation> attrs = new LinkedList<>();
try {
if (printHelp()) {
return help ? CommandResult.SUCCESS : CommandResult.FAILURE;
}
processGlobalOptions();
String clientId = null;
if (args != null) {
Iterator<String> it = args.iterator();
if (!it.hasNext()) {
throw new IllegalArgumentException("CLIENT_ID not specified");
}
clientId = it.next();
if (clientId.startsWith("-")) {
warnfErr(ParseUtil.CLIENT_OPTION_WARN, clientId);
}
while (it.hasNext()) {
String option = it.next();
switch(option) {
case "-s":
case "--set":
{
if (!it.hasNext()) {
throw new IllegalArgumentException("Option " + option + " requires a value");
}
String[] keyVal = parseKeyVal(it.next());
attrs.add(new AttributeOperation(SET, keyVal[0], keyVal[1]));
break;
}
case "-d":
case "--delete":
{
attrs.add(new AttributeOperation(DELETE, it.next()));
break;
}
default:
{
throw new IllegalArgumentException("Unsupported option: " + option);
}
}
}
}
if (file == null && attrs.size() == 0) {
throw new IllegalArgumentException("No file nor attribute values specified");
}
//
if (file == null && attrs.size() > 0) {
mergeMode = true;
}
CmdStdinContext ctx = new CmdStdinContext();
if (file != null) {
ctx = parseFileOrStdin(file, regType);
regType = ctx.getEndpointType();
}
if (regType == null) {
regType = DEFAULT;
ctx.setEndpointType(regType);
} else if (regType != DEFAULT && regType != OIDC) {
throw new RuntimeException("Update not supported for endpoint type: " + regType.getEndpoint());
}
// initialize config only after reading from stdin,
// to allow proper operation when piping 'get' - which consumes the old
// registration access token, and saves the new one to the config
ConfigData config = loadConfig();
config = copyWithServerInfo(config);
final String server = config.getServerUrl();
final String realm = config.getRealm();
if (token == null) {
// if registration access token is not set via --token, see if it's in the body of any input file
// but first see if it's overridden by --set, or maybe deliberately muted via -d registrationAccessToken
boolean processed = false;
for (AttributeOperation op : attrs) {
if ("registrationAccessToken".equals(op.getKey().toString())) {
processed = true;
if (op.getType() == AttributeOperation.Type.SET) {
token = op.getValue();
}
// otherwise it's delete - meaning it should stay null
break;
}
}
if (!processed) {
token = ctx.getRegistrationAccessToken();
}
}
if (token == null) {
// if registration access token is not set, try use the one from configuration
token = getRegistrationToken(config.sessionRealmConfigData(), clientId);
}
setupTruststore(config, commandInvocation);
String auth = token;
if (auth == null) {
config = ensureAuthInfo(config, commandInvocation);
config = copyWithServerInfo(config);
if (credentialsAvailable(config)) {
auth = ensureToken(config);
}
}
auth = auth != null ? "Bearer " + auth : null;
if (mergeMode) {
InputStream response = doGet(server + "/realms/" + realm + "/clients-registrations/" + regType.getEndpoint() + "/" + urlencode(clientId), APPLICATION_JSON, auth);
String json = readFully(response);
CmdStdinContext ctxremote = new CmdStdinContext();
ctxremote.setContent(json);
ctxremote.setEndpointType(regType);
try {
if (regType == DEFAULT) {
ctxremote.setClient(JsonSerialization.readValue(json, ClientRepresentation.class));
token = ctxremote.getClient().getRegistrationAccessToken();
} else if (regType == OIDC) {
ctxremote.setOidcClient(JsonSerialization.readValue(json, OIDCClientRepresentation.class));
token = ctxremote.getOidcClient().getRegistrationAccessToken();
}
} catch (JsonParseException e) {
throw new RuntimeException("Not a valid JSON document. " + e.getMessage(), e);
} catch (IOException e) {
throw new RuntimeException("Not a valid JSON document", e);
}
// that ensures optimistic locking semantics
if (token != null) {
// we use auth with doPost later
auth = "Bearer " + token;
String newToken = token;
String clientToUpdate = clientId;
saveMergeConfig(cfg -> {
setRegistrationToken(cfg.ensureRealmConfigData(server, realm), clientToUpdate, newToken);
});
}
// merge local representation over remote one
if (ctx.getClient() != null) {
ReflectionUtil.merge(ctx.getClient(), ctxremote.getClient());
} else if (ctx.getOidcClient() != null) {
ReflectionUtil.merge(ctx.getOidcClient(), ctxremote.getOidcClient());
}
ctx = ctxremote;
}
if (attrs.size() > 0) {
ctx = mergeAttributes(ctx, attrs);
}
// now update
InputStream response = doPut(server + "/realms/" + realm + "/clients-registrations/" + regType.getEndpoint() + "/" + urlencode(clientId), APPLICATION_JSON, APPLICATION_JSON, ctx.getContent(), auth);
try {
if (regType == DEFAULT) {
ClientRepresentation clirep = JsonSerialization.readValue(response, ClientRepresentation.class);
outputResult(clirep);
token = clirep.getRegistrationAccessToken();
} else if (regType == OIDC) {
OIDCClientRepresentation clirep = JsonSerialization.readValue(response, OIDCClientRepresentation.class);
outputResult(clirep);
token = clirep.getRegistrationAccessToken();
}
String newToken = token;
String clientToUpdate = clientId;
saveMergeConfig(cfg -> {
setRegistrationToken(cfg.ensureRealmConfigData(server, realm), clientToUpdate, newToken);
});
} catch (IOException e) {
throw new RuntimeException("Failed to process HTTP response", e);
}
return CommandResult.SUCCESS;
} catch (IllegalArgumentException e) {
throw new IllegalArgumentException(e.getMessage() + suggestHelp(), e);
} finally {
commandInvocation.stop();
}
}
Also used :
AttributeOperation(org.keycloak.client.registration.cli.common.AttributeOperation)
InputStream(java.io.InputStream)
IOException(java.io.IOException)
JsonParseException(com.fasterxml.jackson.core.JsonParseException)
LinkedList(java.util.LinkedList)
OIDCClientRepresentation(org.keycloak.representations.oidc.OIDCClientRepresentation)
ClientRepresentation(org.keycloak.representations.idm.ClientRepresentation)
OIDCClientRepresentation(org.keycloak.representations.oidc.OIDCClientRepresentation)
ConfigData(org.keycloak.client.registration.cli.config.ConfigData)
CmdStdinContext(org.keycloak.client.registration.cli.common.CmdStdinContext)
Example 2 with CmdStdinContext
use of org.keycloak.client.registration.cli.common.CmdStdinContext in project keycloak by keycloak.
the class ParseUtil method parseFileOrStdin.
public static CmdStdinContext parseFileOrStdin(String file, EndpointType type) {
String content = readFileOrStdin(file).trim();
ClientRepresentation client = null;
OIDCClientRepresentation oidcClient = null;
if (type == null) {
// guess the correct endpoint from content of the file
if (content.startsWith("<")) {
// looks like XML
type = EndpointType.SAML2;
} else if (content.startsWith("{")) {
// try parse as ClientRepresentation
try {
client = JsonSerialization.readValue(content, ClientRepresentation.class);
type = EndpointType.DEFAULT;
} catch (JsonParseException e) {
throw new RuntimeException("Failed to read the input document as JSON: " + e.getMessage(), e);
} catch (Exception ignored) {
// deliberately not logged
}
if (client == null) {
// try parse as OIDCClientRepresentation
try {
oidcClient = JsonSerialization.readValue(content, OIDCClientRepresentation.class);
type = EndpointType.OIDC;
} catch (IOException ne) {
throw new RuntimeException("Unable to determine input document type. Use -e TYPE to specify the registration endpoint to use");
} catch (Exception e) {
throw new RuntimeException("Failed to read the input document as JSON", e);
}
}
} else if (content.length() == 0) {
throw new RuntimeException("Document provided by --file option is empty");
} else {
throw new RuntimeException("Unable to determine input document type. Use -e TYPE to specify the registration endpoint to use");
}
}
// check content type, making sure it can be parsed into .json if it's not saml xml
if (content != null) {
try {
if (type == EndpointType.DEFAULT && client == null) {
client = JsonSerialization.readValue(content, ClientRepresentation.class);
} else if (type == EndpointType.OIDC && oidcClient == null) {
oidcClient = JsonSerialization.readValue(content, OIDCClientRepresentation.class);
}
} catch (JsonParseException e) {
throw new RuntimeException("Not a valid JSON document - " + e.getMessage(), e);
} catch (UnrecognizedPropertyException e) {
throw new RuntimeException("Attribute '" + e.getPropertyName() + "' not supported on document type '" + type.getName() + "'", e);
} catch (IOException e) {
throw new RuntimeException("Not a valid JSON document", e);
}
}
CmdStdinContext ctx = new CmdStdinContext();
ctx.setEndpointType(type);
ctx.setContent(content);
ctx.setClient(client);
ctx.setOidcClient(oidcClient);
return ctx;
}
Also used :
OIDCClientRepresentation(org.keycloak.representations.oidc.OIDCClientRepresentation)
CmdStdinContext(org.keycloak.client.registration.cli.common.CmdStdinContext)
UnrecognizedPropertyException(com.fasterxml.jackson.databind.exc.UnrecognizedPropertyException)
IOException(java.io.IOException)
JsonParseException(com.fasterxml.jackson.core.JsonParseException)
UnrecognizedPropertyException(com.fasterxml.jackson.databind.exc.UnrecognizedPropertyException)
IOException(java.io.IOException)
JsonParseException(com.fasterxml.jackson.core.JsonParseException)
ClientRepresentation(org.keycloak.representations.idm.ClientRepresentation)
OIDCClientRepresentation(org.keycloak.representations.oidc.OIDCClientRepresentation)
Example 3 with CmdStdinContext
use of org.keycloak.client.registration.cli.common.CmdStdinContext in project keycloak by keycloak.
the class CreateCmd method execute.
@Override
public CommandResult execute(CommandInvocation commandInvocation) throws CommandException, InterruptedException {
List<AttributeOperation> attrs = new LinkedList<>();
try {
if (printHelp()) {
return help ? CommandResult.SUCCESS : CommandResult.FAILURE;
}
processGlobalOptions();
if (args != null) {
Iterator<String> it = args.iterator();
while (it.hasNext()) {
String option = it.next();
switch(option) {
case "-s":
case "--set":
{
if (!it.hasNext()) {
throw new IllegalArgumentException("Option " + option + " requires a value");
}
String[] keyVal = parseKeyVal(it.next());
attrs.add(new AttributeOperation(SET, keyVal[0], keyVal[1]));
break;
}
default:
{
throw new IllegalArgumentException("Unsupported option: " + option);
}
}
}
}
if (file == null && attrs.size() == 0) {
throw new IllegalArgumentException("No file nor attribute values specified");
}
if (outputClient && returnClientId) {
throw new IllegalArgumentException("Options -o and -i are mutually exclusive");
}
// if --token is specified read it
if ("-".equals(token)) {
token = readSecret("Enter Initial Access Token: ", commandInvocation);
}
CmdStdinContext ctx = new CmdStdinContext();
if (file != null) {
ctx = parseFileOrStdin(file, regType);
}
if (ctx.getEndpointType() == null) {
regType = regType != null ? regType : DEFAULT;
ctx.setEndpointType(regType);
} else if (regType != null && ctx.getEndpointType() != regType) {
throw new RuntimeException("Requested endpoint type not compatible with detected configuration format: " + ctx.getEndpointType());
}
if (attrs.size() > 0) {
ctx = mergeAttributes(ctx, attrs);
}
String contentType = getExpectedContentType(ctx.getEndpointType());
ConfigData config = loadConfig();
config = copyWithServerInfo(config);
if (token == null) {
// if initial token is not set, try use the one from configuration
token = config.sessionRealmConfigData().getInitialToken();
}
setupTruststore(config, commandInvocation);
String auth = token;
if (auth == null) {
config = ensureAuthInfo(config, commandInvocation);
config = copyWithServerInfo(config);
if (credentialsAvailable(config)) {
auth = ensureToken(config);
}
}
auth = auth != null ? "Bearer " + auth : null;
final String server = config.getServerUrl();
final String realm = config.getRealm();
InputStream response = doPost(server + "/realms/" + realm + "/clients-registrations/" + ctx.getEndpointType().getEndpoint(), contentType, HttpUtil.APPLICATION_JSON, ctx.getContent(), auth);
try {
if (ctx.getEndpointType() == DEFAULT || ctx.getEndpointType() == SAML2) {
ClientRepresentation client = JsonSerialization.readValue(response, ClientRepresentation.class);
outputResult(client.getClientId(), client);
saveMergeConfig(cfg -> {
setRegistrationToken(cfg.ensureRealmConfigData(server, realm), client.getClientId(), client.getRegistrationAccessToken());
});
} else if (ctx.getEndpointType() == OIDC) {
OIDCClientRepresentation client = JsonSerialization.readValue(response, OIDCClientRepresentation.class);
outputResult(client.getClientId(), client);
saveMergeConfig(cfg -> {
setRegistrationToken(cfg.ensureRealmConfigData(server, realm), client.getClientId(), client.getRegistrationAccessToken());
});
} else {
printOut("Response from server: " + readFully(response));
}
} catch (UnrecognizedPropertyException e) {
throw new RuntimeException("Failed to process HTTP reponse - " + e.getMessage(), e);
} catch (IOException e) {
throw new RuntimeException("Failed to process HTTP response", e);
}
return CommandResult.SUCCESS;
} catch (IllegalArgumentException e) {
throw new IllegalArgumentException(e.getMessage() + suggestHelp(), e);
} finally {
commandInvocation.stop();
}
}
Also used :
UnrecognizedPropertyException(com.fasterxml.jackson.databind.exc.UnrecognizedPropertyException)
DEFAULT(org.keycloak.client.registration.cli.common.EndpointType.DEFAULT)
CMD(org.keycloak.client.registration.cli.util.OsUtil.CMD)
OIDC(org.keycloak.client.registration.cli.common.EndpointType.OIDC)
ParseUtil.parseKeyVal(org.keycloak.client.registration.cli.util.ParseUtil.parseKeyVal)
CommandResult(org.jboss.aesh.console.command.CommandResult)
CommandDefinition(org.jboss.aesh.cl.CommandDefinition)
AuthUtil.ensureToken(org.keycloak.client.registration.cli.util.AuthUtil.ensureToken)
ConfigUtil.setRegistrationToken(org.keycloak.client.registration.cli.util.ConfigUtil.setRegistrationToken)
IoUtil.printOut(org.keycloak.client.registration.cli.util.IoUtil.printOut)
ConfigUtil.saveMergeConfig(org.keycloak.client.registration.cli.util.ConfigUtil.saveMergeConfig)
CommandInvocation(org.jboss.aesh.console.command.invocation.CommandInvocation)
EndpointType(org.keycloak.client.registration.cli.common.EndpointType)
LinkedList(java.util.LinkedList)
ParseUtil.parseFileOrStdin(org.keycloak.client.registration.cli.util.ParseUtil.parseFileOrStdin)
CmdStdinContext(org.keycloak.client.registration.cli.common.CmdStdinContext)
EOL(org.keycloak.client.registration.cli.util.OsUtil.EOL)
OIDCClientRepresentation(org.keycloak.representations.oidc.OIDCClientRepresentation)
PrintWriter(java.io.PrintWriter)
IoUtil.readSecret(org.keycloak.client.registration.cli.util.IoUtil.readSecret)
Iterator(java.util.Iterator)
ParseUtil.mergeAttributes(org.keycloak.client.registration.cli.util.ParseUtil.mergeAttributes)
Arguments(org.jboss.aesh.cl.Arguments)
StringWriter(java.io.StringWriter)
DEFAULT_CONFIG_FILE_STRING(org.keycloak.client.registration.cli.util.ConfigUtil.DEFAULT_CONFIG_FILE_STRING)
SAML2(org.keycloak.client.registration.cli.common.EndpointType.SAML2)
IOException(java.io.IOException)
ConfigUtil.loadConfig(org.keycloak.client.registration.cli.util.ConfigUtil.loadConfig)
HttpUtil(org.keycloak.client.registration.cli.util.HttpUtil)
HttpUtil.getExpectedContentType(org.keycloak.client.registration.cli.util.HttpUtil.getExpectedContentType)
ClientRepresentation(org.keycloak.representations.idm.ClientRepresentation)
JsonSerialization(org.keycloak.util.JsonSerialization)
ConfigUtil.credentialsAvailable(org.keycloak.client.registration.cli.util.ConfigUtil.credentialsAvailable)
PROMPT(org.keycloak.client.registration.cli.util.OsUtil.PROMPT)
Option(org.jboss.aesh.cl.Option)
List(java.util.List)
AttributeOperation(org.keycloak.client.registration.cli.common.AttributeOperation)
CommandException(org.jboss.aesh.console.command.CommandException)
EndpointTypeConverter(org.keycloak.client.registration.cli.aesh.EndpointTypeConverter)
IoUtil.readFully(org.keycloak.client.registration.cli.util.IoUtil.readFully)
SET(org.keycloak.client.registration.cli.common.AttributeOperation.Type.SET)
OS_ARCH(org.keycloak.client.registration.cli.util.OsUtil.OS_ARCH)
Command(org.jboss.aesh.console.command.Command)
IoUtil.printErr(org.keycloak.client.registration.cli.util.IoUtil.printErr)
ConfigData(org.keycloak.client.registration.cli.config.ConfigData)
InputStream(java.io.InputStream)
HttpUtil.doPost(org.keycloak.client.registration.cli.util.HttpUtil.doPost)
AttributeOperation(org.keycloak.client.registration.cli.common.AttributeOperation)
InputStream(java.io.InputStream)
UnrecognizedPropertyException(com.fasterxml.jackson.databind.exc.UnrecognizedPropertyException)
IOException(java.io.IOException)
LinkedList(java.util.LinkedList)
OIDCClientRepresentation(org.keycloak.representations.oidc.OIDCClientRepresentation)
ClientRepresentation(org.keycloak.representations.idm.ClientRepresentation)
OIDCClientRepresentation(org.keycloak.representations.oidc.OIDCClientRepresentation)
ConfigData(org.keycloak.client.registration.cli.config.ConfigData)
CmdStdinContext(org.keycloak.client.registration.cli.common.CmdStdinContext)
Aggregations
IOException (java.io.IOException)3
CmdStdinContext (org.keycloak.client.registration.cli.common.CmdStdinContext)3
JsonParseException (com.fasterxml.jackson.core.JsonParseException)2
UnrecognizedPropertyException (com.fasterxml.jackson.databind.exc.UnrecognizedPropertyException)2
InputStream (java.io.InputStream)2
LinkedList (java.util.LinkedList)2
AttributeOperation (org.keycloak.client.registration.cli.common.AttributeOperation)2
ConfigData (org.keycloak.client.registration.cli.config.ConfigData)2
ClientRepresentation (org.keycloak.representations.idm.ClientRepresentation)2
OIDCClientRepresentation (org.keycloak.representations.oidc.OIDCClientRepresentation)2
PrintWriter (java.io.PrintWriter)1
StringWriter (java.io.StringWriter)1
Iterator (java.util.Iterator)1
List (java.util.List)1
Arguments (org.jboss.aesh.cl.Arguments)1
CommandDefinition (org.jboss.aesh.cl.CommandDefinition)1
Option (org.jboss.aesh.cl.Option)1
Command (org.jboss.aesh.console.command.Command)1
CommandException (org.jboss.aesh.console.command.CommandException)1
CommandResult (org.jboss.aesh.console.command.CommandResult)1
